Four young people have been arrested after cyber attacks on some of the UK’s best-known retailers.
The National Crime Agency picked up two 19-year-old men, a 17-year-old boy, and a 20-year-old woman. Early morning raids. Homes searched. Devices seized.
All remain in custody.
The arrests follow coordinated attacks on M&S, Co-op and Harrods in April. The suspects are being questioned on suspicion of blackmail, money laundering, computer misuse, and organised crime.
Paul Foster, Deputy Director of the NCA’s National Cyber Crime Unit, said:
“Since these attacks took place, specialist NCA cybercrime investigators have been working at pace and the investigation remains one of the Agency’s highest priorities.”
He added: “Today’s arrests are a significant step in that investigation but our work continues, alongside partners in the UK and overseas, to ensure those responsible are identified and brought to justice.”
“Cyber attacks can be hugely disruptive for businesses and I’d like to thank M&S, Co-op and Harrods for their support to our investigations. Hopefully this signals to future victims the importance of seeking support and engaging with law enforcement as part of the reporting process. The NCA and policing are here to help,” Foster explained.
Officers from the West Midlands and East Midlands units supported the operation.
The suspects were arrested at home. Not hiding, just connected.
The NCA says the investigation is far from over.
Businesses hit by cybercrime are urged to report incidents through the Government’s Cyber Incident Signposting Site.
A Sticking Plaster on a Bigger Problem
Charlotte Wilson, head of enterprise at Check Point, said: “These arrests are a welcome step, but they’re a sticking plaster on a much bigger problem. This wasn’t a teenage prank. It was a coordinated assault on three of the UK’s biggest retailers – M&S, Co-op, and Harrods – with real-world impact: customers left without food, shelves emptied, online systems crippled.
“We’re dealing with a new breed of cybercriminals; younger, faster, and more organised, but our systems to stop them are still playing catch-up,” she added. “Right now, there’s a dangerous gap between the cybersecurity world and the criminal justice system. We need deeper integration – shared intelligence, faster response, and tougher consequences. Cybercrime is no longer virtual; it’s physical. And unless we give our response more teeth, we’re inviting more chaos.”
An Opportunity?
Brian Higgins, Security Specialist at Comparitech, added, “Very limited information has been released about these arrests. It’s doubtful any of the four are high-level gang members, as those who risk the most generally do so from jurisdictions that allow them some protection from law enforcement.”
Higgins said their age range is interesting, as the profile of domestic cyber criminals has fluctuated from pre-teens to working-age protagonists over the years. “Although it’s a small sample, there could be value in further studies to identify the most effective deployment of prevention and other strategies. In the past, cyber criminals, once apprehended, have been perfectly happy to de-brief with law enforcement and researchers interested in their motivations and methodologies, so perhaps there’s an opportunity here.”
Information Security Buzz News Editor
Kirsten Doyle has been in the technology journalism and editing space for nearly 24 years, during which time she has developed a great love for all aspects of technology, as well as words themselves. Her experience spans B2B tech, with a lot of focus on cybersecurity, cloud, enterprise, digital transformation, and data centre. Her specialties are in news, thought leadership, features, white papers, and PR writing, and she is an experienced editor for both print and online publications.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.